Warning Ahead: Security Storms Brewing in JavaScript
Offered By: OWASP Foundation via YouTube
Course Description
Overview
Explore the security vulnerabilities in JavaScript and their potential impact on enterprise systems in this 36-minute conference talk from AppSecEU 2014. Delve into a new class of JavaScript-specific vulnerabilities, exploitation of third-party platforms through JavaScript code, and security concerns introduced by HTML5. Learn about cross-site scripting, web sockets, same-origin policy, and sandbox flaws. Watch a demonstration highlighting these security issues and gain insights from Maty Siman, CTO and founder of Checkmarx, as he shares his expertise in software development, IT security, and source-code analysis.
Syllabus
Intro
Agenda
Crosssite scripting
Web sockets
Same origin policy
Sandbox
Flaw in Sandbox
Demo
Taught by
OWASP Foundation
Related Courses
Web Security: Same-Origin PoliciesLinkedIn Learning Client-Side Protection Against DOM-Based XSS Done Right
OWASP Foundation via YouTube CSP Pitfalls and Gotchas
OWASP Foundation via YouTube The "Web/Local" Boundary Is Fuzzy - A Security Study of Chrome's Process-based Sandboxing
Association for Computing Machinery (ACM) via YouTube Browsers Gone Wild
Black Hat via YouTube